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A method of protecting proprietary rights in pro- 


bination of encryption and bureaucratic mechanisms 



tectable works of authorship, by restricting each copy of 
the work to a specific device or set of devices. A corn- 



make it impracticable for anyone to play the work unless 
authorized to do so. 
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Description 

Technical Field 

The present invention relates to a method for pro- $ 
tecting proprietary rights to works of authorship which 
are recorded In digital form, such works including, for 
example, music arid video presentations. 

Background of the invention io 

It is inevitable that in the near future, works of au- 
thorship, such as music, will be available for review and 
purchase from the comfort of one's home; With technol- 
ogy like the AT&T audio coding technique which delivers is 
CD quality sound from a 128Kb/sec bit stream; ISDN 
networks that convey data at 1 28 Kb/sec; magnetic disk 
storage which costs today , less than $1.00 per mega- 
byte, and the cost of magnetic tape storage, -which can 
be as little as $1 .38 per hour depending upon the so- 20 
phistication of the tape drive, the technological and eco- 
nomic foundation exists for delivery of music and other 
protectable works of authorship over a public network. 

In practical terms one can expect that music pur- 
chases will be made using a computer. -This machine 2s 
may be a personal computer or it may be buried inside 
an appliance such as a juke box or hi-fi audio compo- 
nent. • 

Dorward and'Thomson at AT&T Bell Laboratories 
have previously demonstrated a 'juke box", consisting so 
of a personal computer that obtains CD quality music 
from a networked file store. The music is stored in com- 
pressed digital form using the PAC (Perceptual Audio 
Coding) algorithm, developed by Johnston and Quack- 
enbush. An index, arranged alphabetically by title or per- as 
former, appears on the computer screen and one merely 
•clicks" a title to hear the music played through a stereo 
high-fidelity audio system. 

The average rate of data transfer from the file store 
in this system is less than 1 28 Kb/sec. 1 1 could have been 4Q 
transmitted in reaNime over a pair of ISDN channels, 
transferred off-line to disk at one of the lower data rates 
already available with a modem on a telephone line, or 
it could have been delivered in much less than real time 
over the Internet to anyone with T1 access to that net- *s 
work. Plans by telephone and cable television compa- 
nies promise high speed transmission to many homes 
within a few years. "Music by wire" seems inevitable. 

A musical composition "Head First", recorded by 
Aerosmith, was recently placed in the Compuserve file so 
store, and made available without additional charge to 
all of Compuserve's customers. The song, which plays 
for 3 minutes and 14 seconds, took about 90 minutes to 
download over a 9.6Kb/sec access circuit. Nonetheless, 
this event gave emphasis to a concern by music pub- ss 
Ushers that the existing copyright law is insufficient to 
preserve their rights to royalty payments. 

While it appears that technology may exist for trans- 



mission of protectable works of authorship on a 
switched public network, it may not become an interest- 
ing business opportunity until there is a practical means 
of protecting the proprietary rights for this material, in- 
cluding copyright. 

This invention is directed to a solution of that prob- 
lem. 

Summary of the Invention 

Accordingly, the general -object of this invention is 
to provide a method of protecting the; proprietary rights 
in protectable works of authorship such as music or vid- 
eo. More specifically, it is one object of this invention to. 
restrict each copy.of a protectable work of authorship to 
a specific player.or set of players, where "player" is de- 
fined as any device capable of providing the protected 
work to the consumer. This.ensures that the publisher 
of the work receives its royalties for each copy of the 
work being played. In other words, the work cannot ber 
enjbyedby someone who did not license that right from . 
the publisher .-_■.■> • > ., *-;■:.". 

It is a further objectbf the invention that the distrib- 
uted work; such as music, is not tied to a particular play- 
er, but that any particular consumer can obtain a license 
to play the work for his specific! player only. 

This is accomplished by requiring>the purchaser of 
the protectable work of authorship to provide an identi- 
fication number for the player or players on which the 
work is to be played. In return; the consumer receives 
a permit which is a small packet of data which when pre- 
pended to the work unlocks the work so that it can be 
played on this specific player, or.players. 

Another object of this invention is to employ a com- 
bination of encryption and administrative mechanisms 
that would make it extremely difficult to play the work on 
an unauthorized player. The implementation Js intended 
to be robust enough to discourage an entrepreneur who 
would sell a device which circumvents this protection. 
In other words, the inventive implementation is designed 
to discourage someone who. would reproduce, and sell 
the digitized work to others in a way that does not require 
them to purchase a license from the copyright holder. 

Brief Description of the Drawings 

In the drawings: 

FIGS. 1A-1C illustrate a transmission format for 
protecting a work, such as music, from unauthor- 
ized copying; and 

FIGS. 2A-2C show a block diagram for an encryp- 
tion scheme and decryption scheme in accordance 
with the invention. 

Detailed Description of the Invention 

The following terms will be used to describe how 
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protection is achieved in accordance with the principles 
olthe invention. 

Player The device which decrypts and de- 

■ ■ codes the protectable work of author- 
ship; 

Vendor The entity which sells the protectable 

work of authorship to the consumer; 
Publisher The entity which encodes and en- 

crypts the protectable work of author- 
• - ship; . : 
Manufacturer The entity which makes the Player; 
Referee * The entity which issues permits; and. 

Governor The entity which issues identification 

' ■. vj[. numbers to Manufacturers. 

h The role of the Governor is minimal, and it might 
reasonably be performed by a standards body such as 
the El A: r A Player identification number could be, for ex- 
ample, ^a* 10-digit number. Although a separate identifi- 
cation number for each Player is preferred, it is not nec- 
essary: so long as no two Manufacturers use the same 
identification number.' A preferred embodiment of this in- 
vention wouk^have, the Governor choose the six (6) 
most significant digits which would identify the specific 
Manufacturer of 'each Player, while leaving the specific 
use for the remaining digits to the Manufacturer. - 

In accordance with the invention, the Referee com- 
putes a permit which consists of the work title and Player 
identification number unencrypted, and the work key en- 
crypted using the Player key, as will be described in 
greater detail below. Also, random digits could be ap- 
pended to the work key to make decryption more difficult 
when someone has managed to collect copies of many 
permits for the same work. 

The permit authorizes a given Player to play a given 
work of authorship. Several permits may be concatenat- 
ed when a customer has several Players that are au- 
thorized to play the mu6ic. 

The work and permit are encrypted with a robust 
encryption algorithm such as the Data Encryption 
Standard (DES). The work and permit are encrypted 
separately. Thus access to the work requires two keys. 

Each Publisher chooses a different key for each 
protectable work of authorship. The work is encrypted 
with the corresponding work key. Each Publisher then 
creates a work code book in which all the work keys are 
indexed by work title. The work code book is kept secret, 
and access is restricted to the Publisher and Referee. 

Similarly, each Manufacturer chooses a different 
Player key for each Player. The Player key is a code 
used to decrypt and decode the permit. Each Manufac- 
turer then creates a Player code book in which all the 
Player keys are indexed by Player identification number, 
which identifies each authorized player. Like the work 
code book, the Player code book is kept secret and ac- 
cess is restricted to the Manufacturer and Referee. 

It is essential that it be very difficult to discover the 



Player key. With the Player key in hand, one can decrypt 
the permits which the Player's owner has obtained and 
thereby come to know the work key. Once the work has 
been decrypted, copies of the work can be played by 

s any device that knows how to decode it. While it may 
help to keep the work encoding scheme secret, it is un- 
likely that can be done if it is not possible to keep the 
Player key secret. Therefore it is the Player key, not the 
decoder algorithm which should be most rigorously pro-, 

10 tected. 

In order to protect the Player key^ it is placed, for 
example, in a write-once memory inside the decoder 
chip, the write circuits should then be disabled, and the 
chip should then be encased in a tamper-proof package. 

1$ It is not uncommon in commercial practice for someone 
with serious interest in the content of a chip to remove 
the chip's packaging, expose the micro-circuit and in- 
spect the device with a microscope. The chip, once ex-, 
posed in this way, can be exercised and so reveal even 

20 more about its ; workings.. Fortunately, various counter 
measures have been developed in response to military 
and national security requirements. Known protection 
schemes should be used to protect the Player. 

Once, decrypted, the work is exposed for anyone 

25 who cares to abuse its author's proprietary rights., 
Therefore, It is.preferable that the circuits which decode 
it and convert it to analog form be co-located and pack-, 
aged in a way that makes it difficult to pick off the de- 
crypted bit stream. That is achieved by Including decryp- 

30 tion, decoding . and digital-to-analog conversion in one 
package. White it would be possible to copy the analog 
signal, as is done now, the result will lack the quality of 
the digrtaloriginal. Hopefully, this will discourage poten- 
tial abuse of the inventive system. 

3s Since it is also essential that the contents of both 
code books remain secret, the Referees must be trust- 
worthy. Accordingly, it is suggested that only a minimum 
number of Referees be appointed. 

In one preferred embodiment, a consumer interest- 

40 ed in using his personal computer to purchase mysic 
would use a software package, specially designed for 
this purpose, to make contact with the rousic Vendor and 
provide the necessary means to browse- the Vendor's 
catalog. The software may also be designed to allow the 

45 consumer to preview the music and to obtain back- 
ground information on the recording, 

Once a decision to purchase is made, the personal 
computer will transmit a list of the identities of Players 
owned by the consumer, and a credit card number or 

so some other reference for payment. The Vendor would 
then call upon a Referee to obtain a permit, similar to 
how a Vendor today would call to check a credit card 
payment. The Vendor would supply the Referee with the 
title of the music and the identification number of the 

55 Player or Players. Using the code books, the Referee 
computes and returns an appropriate permit. 

The Vendor will then transmit the encrypted music 
with the issued permit to the consumer. 
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The consumer's software package will search for a Claims 
permit bearing the identification number of its Player. It 
will then decrypt the permit using its Player key. Once 1. 
decrypted the work key is accessible and is used to de- 
crypt the transmitted work. 5 

In a second embodiment of this invention, the Ven- 
dor bulk mails a compact disc, or some other similar 
storage device, with encrypted music and unencrypted 
previews. Having listened to the previews, a customer 
might choose to purchase a piece using much the same io 
procedure as described above. In the final step, the per- 
mit is transmitted from the music Vendor and placed in 
a file on the customer's machine, indexed by the piece 
of music to which it applies. The software which re- 
trieves the music from the compact disc would first look is 
for a suitable permit in the file system, sending that to 
the Player before playing the music. 

Referring now to FIGS. 1 A and 2A, it is seen that 
the original work is encrypted with the work key, and the 
work title is then attached for identification purposes. 20 
The result, as shown in FIG. 2A, is the encrypted work, 
consisting of the work title, and the original work encrypt- 
ed with the work key. 

FIGS. 1 B and 1C, along with FIG. 2B illustrate how 2. 
the permit is generated for the consumer. More particu- z £ 
larry, the purchase request is received from the consum- 
er consisting of the work title and the Player I.D. This is 
transmitted to the Vendor, along with identification of the 3. 
electronic payment means as shown in FIG. 1B. Gen- 
eration of the perm it consists of the following four steps: 30 



4. 

a) Search the Work Codebook for an entry bearing 
the'work title as provided by the consumer and ob- 
tairf the work key from that codebook entry; 

b) Search the Player Codebook for an entry bearing 35 5. 
the player ID as provided by the consumer and ob- 
tain the player key from that codebook entry; 

c) Use the player key to encrypt the work key; 6. 

d) Attach the work title and player ID to the encrypt- 
ed work key, thereby creating the permit which is <o 
sent to the consumer. 



A method of protecting proprietary rights to selected 
works of authorship, the method comprising the 
steps of: 

assigning a coded work key to a work of author- 
. ship; • . 

providing a Player to play said work of author- 
ship, said Player provided with an individually 
assigned Player identification number and a 
. coded Player key; 

issuing a coded permit to a user for access to 
said work of authorship, said coded permit in- 
cluding a title for said work of authorship, said 
coded work key and said Player identification 
number; 

utilizing said Player key to decode said coded 
permit whereby said coded work key is decod- ; 
ed by said Player; and 

utilizing said decoded work key to access said 
work of authorship. 

A method in accordance with Claim 1 f wherein the 
work of authorship is transmitted from vendor to 
consumer oyer a public network. 

A method ^accordance with Claim 1, wherein the 
Player consists of a group of Players; 

A method in accordance with Claim 1, wherein the 
work of authorship is stored on a public network in 
compressed digital form. 

A method in accordance with Claim 4, wherein the 
Perceptual Audio Coding ("PAC") algorithm is used. 

A method in accordance with Claim 1 , wherein the 
work of authorship and permit are individually en- 
crypted using a predetermined encryption algo- 
rithm. 



After the permit is issued, the original work is de- 
coded in the manner shown in FIG. 2C. More particular- 
ly, the permit is applied to a decryption unit, where de- 
cryption takes place in combination with the player key. 
The output of the decryption unit is the work key, which 
is applied to a decryption unit to decrypt the encrypted 
work with the result being the original work, then avail- 
able for the consumer to view or listen to the original 
music, as provided by the Vendor. 

The foregoing merely illustrates the principles of the 
invention. It will thus be appreciated that those skilled in 
the art will be able to devise various arrangements 
which, although not explicitly described or shown here- 
in, embody the principles of the invention and are thus 
within its scope. 



AS 



so 



ss 



A method in accordance with Claim 6, wherein the 
work of authorship and permit are individually en- 
crypted using the Data Encryption Standard. 

A method of protecting proprietary rights to selected 
works of authorship, the method comprising the 
steps of: 

encrypting a selected work of authorship with a 
coded work key; 

generating a permit to access said encrypted 

selected work of authorship; 

transmitting said permit to a user desirous of 

accessing said selected work of authorship; 

and 

utilizing said permit to decrypt said selected 



7 



EP 0 717 338 A1 



work of authorship to permit access by said us- 
er. 

9. A method in accordance with Claim 8, wherein 6aid 
generating step further includes the steps of: 5 

combining a work title with a work key to gen- 
' erate a first signal, and combining a player I.D. 
with a player key to generate a second signal; 
arid • y 10 

encrypting said first and second signals to gen- 
erate said permit. 

10i ! - A method in accordance with Claim 8, wherein said 
1 selected works of authorship are stored on a CD 
Rom medium. 

1 1 : A method of protecting proprietary rights to selected 
works of authorship, the method comprising the 
steps of: ' : — : ' ■> ■ - " - • ' ' 20 

assigning a work key to a work of authorship; 
' utilizing said work key to encrypt said work of 
authorship; ■ - ' . 

installing a concealed player key in a playerthat 2S 
gives access to said work of authorship; 
: ' issu in g a pe rm it to a user so that said user can 
have access to said work of authorship, said 
permit containing said work key encrypted with 
said player key; . - 30 

'utilizing said player key in a player to decrypt 
said encrypted work key that is contained in 
said permit, thereby revealing said work key; 
■ 'and- ' ■* -■- '-■ •■-. 

utilizing said work key to decrypt said encrypted ss 
work of authorship whereby said work of au- 
thorship is revealed. 
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